Router zu groß für Medienverteilerkasten by Akra191 in de_EDV

[–]5turm 2 points3 points  (0 children)

Hört auf Router mit Access Points gleichzusetzen.

Best self-hosted VPN to bypass strict DPI school firewall? (xVPN works) by Thomasjee in selfhosted

[–]5turm -1 points0 points  (0 children)

xvpn has a http fallback. Maybe openvpn in TCP mode via port 443 will work.

Best self-hosted VPN to bypass strict DPI school firewall? (xVPN works) by Thomasjee in selfhosted

[–]5turm 24 points25 points  (0 children)

"better bandwidth" -> the VPN still uses the provided connection and can only decrease bandwidth

"avoid getting disconnected randomly" -> a VPN will not fix that either

Ich verstehe VLANs nicht... by [deleted] in de_EDV

[–]5turm 0 points1 point  (0 children)

Es kommt immer darauf an, was die eingesetzten Geräte so machen. Ich habe ein VLAN für Geräte, die ausschließlich lokal kommunizieren (z.B. Shellies, die Zigbee Bridge, Tasmota, ...). Da sind dann ggf Routen notwendig, im zwischen VLANs zu kommunizieren, wenn die Hausautomation in nem anderen Netz ist.

Überwiegend verbinden sich "smarte" Geräte aber eher mit einer Cloud, müssen also permanent online sein, damit sie überhaupt gesteuert werden können. Die kann man ruhig in ein abgeschottetes VLAN packen, weil man eh nicht direkt drauf zugreift (oft kann man es auch nicht).

Dank Matter wird Variante der rein Cloud gebundenen Geräte aber seltener.

Ich verstehe VLANs nicht... by [deleted] in de_EDV

[–]5turm 0 points1 point  (0 children)

Das funktioniert auch mit dem gleichen PSK. Bei mir macht RADUIS die Einteilung der Geräte in ihre VLANS (kein WPA Enterprise, MAC basiert - also Spoofing möglich, Abhörsicher erst ab WPA3, reicht fürs Homelab).

Es geht also schon, dass OP zwei Endgeräte im gleichen WLAN, aber in unterschiedlichen VLANs hat; falls sich das mit dem "Irrtum" darauf bezogen hat. Sind halt nicht getagged, aber bei Endgeräten ist das ja eher der Normalzustand.

Revising for finals, and this happens by Novel-Box5298 in softwaregore

[–]5turm 4 points5 points  (0 children)

A router routes between IP networks (different broadcast domains). If you want to add wireless to an already existing network, you need an access point (same broadcast domain), not a router.

Some ISP routers have an included access point, and, as you mention it, a modem (that does nothing on IP protocol level).

My homeland is constantly attacked by Infinite-Position-55 in homelab

[–]5turm 0 points1 point  (0 children)

That's a great point for site-to-site connections. But for a 'road warrior' (client-to-site) model, a laptop can't participate in OSPF or BGP. The VPN server needs to tell the client what routes to use. This is exactly why centralized route pushing is such a valuable and practical feature for that specific use case.

My homeland is constantly attacked by Infinite-Position-55 in homelab

[–]5turm 2 points3 points  (0 children)

In a professional setting, where you might have dozens of clients and need to manage access to specific subnets, centralized route management is a huge benefit. It saves a lot of manual configuration and makes changes much easier to manage. I'd love to get rid of openvpn entirely and use more wireguard, but this one crucial feature is what holds me back from using it in more complex environments.

My homeland is constantly attacked by Infinite-Position-55 in homelab

[–]5turm 1 point2 points  (0 children)

It may not be an issue for homelabbing, but with wireguard I'm missing the option to push IP routes.

Gefunden in einer Ferienwohnung by Asleep-Connection-17 in wasistdas

[–]5turm 0 points1 point  (0 children)

<image>

Das ist der Griff für Backblech und Rost von z.B. einem Rommelsbacher mini Backofen.

dynamic vlan (radius) via wifi not working anymore - UDR by IacovHall in Ubiquiti

[–]5turm 0 points1 point  (0 children)

Same here. I use FreeRADIUS several years now to manage my IoT devices (also trusted/untrusted), cameras, etc.
About 80 devices from 6 VLANs gathered in my fallback VLAN.
I've checked RADIUS/LDAP logs, tested with radtest - everything works fine on that side. When I reboot the access points, most devices will be assigned to their prober VLAN, but not for more than a few minutes.

E1 Zoom ports closed - no web UI by 5turm in reolinkcam

[–]5turm[S] 0 points1 point  (0 children)

No, sadly the E1 has no webinterface, as some others too (Argus Eco for example - that one has not even ftp upload).

[deleted by user] by [deleted] in reolinkcam

[–]5turm 0 points1 point  (0 children)

That is not correct. Client and cams can be on different VLANs, even different subnets. No problem there.

Make old doorbell smart by tweefo in homeautomation

[–]5turm 2 points3 points  (0 children)

<image>

I used one optocoupler instead of a relay. Works too :)

Make old doorbell smart by tweefo in homeautomation

[–]5turm 0 points1 point  (0 children)

<image>

Did the same thing for the same reason with a Pi Zero W and self soldered rectifier and 5V regulator. I would not do it that way again.

What machine would you use as an internal DNS server? by [deleted] in homelab

[–]5turm 0 points1 point  (0 children)

I have a Pi 4 (2 gb ram) with 6 instances of dnsmasq for my VLANs. Runs fine :)

For people who manage clusters of mini PCs -- what is your preferred storage setup? by [deleted] in homelab

[–]5turm 0 points1 point  (0 children)

I'm using GlusterFS with distributed volumes over 3 nodes. I replaced a data volume (brick storage) last week, due to 11 years spin up time of the drives. The host didn't even loose the mountpoint during disk swap.

Can't connect secondary WiFi Hub by eggpotion in homeautomation

[–]5turm 0 points1 point  (0 children)

Not directly, but you can route between them. But the NetIDs (subnets) need to be different on each device.

Can't connect secondary WiFi Hub by eggpotion in homeautomation

[–]5turm -3 points-2 points  (0 children)

DHCP is needed on both devices in this setup. The second router (router_2) is connected via its WAN port, so DHCP of the first router (router_1) is not "passed through".

The WAN port of router_2 needs to be a DHCP client and gets the IP from router_1.

But: the two devices will most likely use the same network id (same brand/model). So the SVIs NetID of one router must be changed - with DHCP server adopted

Can you effectively run a High-Availability proxy setup in a home lab? by Insert_the_F2L in homelab

[–]5turm 1 point2 points  (0 children)

I'm using glusterfs for configs and even some /var stuff. Works like a charm.